🔍

Code Reviewer Agent

Coding · Monitor · Claude Opus

Heartbeat: Event-driven (webhook on PR)

Every PR reviewed in 30 seconds — bugs, security, perf, style.

WHAT IT DOES

Automated code review triggered on every PR. Pulls the diff, understands the full context (not just changed lines — the surrounding architecture), and reviews for: logic bugs, security vulnerabilities (OWASP Top 10 — injection, XSS, CSRF, auth bypasses), performance regressions, style violations, test coverage gaps, and architectural drift from established patterns. Produces structured comments with severity levels (CRITICAL / HIGH / MEDIUM / LOW). Learns your codebase conventions over time — what starts as generic review becomes project-specific. Integrates with your CI — can block merge on CRITICAL findings.

WORKFLOW

  1. Webhook triggers on PR
  2. Pull diff + surrounding context
  3. Analyse (bugs, security, perf, style, coverage, architecture)
  4. Generate structured comments
  5. Post inline on PR
  6. Track resolution
  7. Learn from accepted/rejected suggestions

SKILLS

context-aware-diff-analyzerast-static-analyzerowasp-security-scannerperf-regression-detectorstyle-enforcercoverage-gap-detectorconvention-learnerarchitectural-drift-detector

INTEGRATIONS

GitHub API
GitLab API
GitHub Advisory Database
Git
GitHub Actions
CircleCI
Memory
Role
Monitor
Model
Claude Opus
Heartbeat
Event-driven (webhook on PR)